Personal Friends

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only social memory skill that stores friend details locally, with privacy caveats but no evidence of hidden code, exfiltration, or unsafe execution.

Install only if you are comfortable keeping friend details, birthdays, plans, gift ideas, and debt notes in `knowledge/personal/friends.md`. Review or delete that file when you want to remove saved information, and avoid storing details about other people that should not persist in the agent workspace.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The README explicitly states that the skill stores friends' identities, birthdays, debts, plans, and gift ideas in a workspace file, but it does not warn users that this is persistent sensitive personal and financial data. In an agent workspace, such data may be exposed to other skills, logs, backups, or shared environments, creating privacy and confidentiality risks even if the functionality is intended.

Vague Triggers

Medium

Confidence: 94% confidence
Finding: The invocation description is overly broad and can activate on common terms like 'friend', 'birthday', 'meeting', or a person's name, which may cause the skill to run in unrelated conversations. Because this skill reads and updates a private friends memory file, over-invocation increases the risk of exposing or modifying sensitive personal data in the wrong context.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal